[xmlsec] X509 - does cert need to be included in XML?

Aleksey Sanin aleksey at aleksey.com
Mon Nov 3 12:16:17 PST 2008

You can refer to "signed" cert using certificate subject, etc.
But some reference MUST present.


Mark Young wrote:
> I've been verifying signed XML documents using an X509 chain, and I've 
> found that the verification is only successful if the actual signing 
> certificate is provided in the XML.  The other certificates in the chain 
> can just be placed in the keys manager.  Is there a way for the 
> verification to succeed with all the certificates in the keys manager, 
> without requiring any to be included in the signed XML document?  Mike
> ------------------------------------------------------------------------
> When your life is on the go—take your life with you. Try Windows Mobile® 
> today <http://clk.atdmt.com/MRT/go/115298558/direct/01/>
> ------------------------------------------------------------------------
> _______________________________________________
> xmlsec mailing list
> xmlsec at aleksey.com
> http://www.aleksey.com/mailman/listinfo/xmlsec

More information about the xmlsec mailing list